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We describe and analyze a new digital signature scheme. The new scheme is quite efficient, 
does not require the the signer to maintain any state, and can be proven secure against 
adaptive chosen message attack under a reasonable intractability assumption, the so-called 
strong RSA assumption. Moreover, a hash function can be incorporated into the scheme in 
such a way that it is also secure in the random oracle model under the standard RSA 
assumption. 
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In response to tlie current need for fast, secure and cheap public-key cryptography largely 
induced by the fast development of electronic commerce, we propose a new on the fly 
signature scheme, i.e. a scheme that requires very small on-line work for the signer It 
combines provable security based on the factorization problem, short public and secret keys, 
short transmission and minimal on-line computation. It is the first RSA-like signature 
scheme that can be used for both ef ... 
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In this paper, we prove the intractability of learning several classes of Boolean functions in 
the distribution-free model (also called the Probably Approxinnately Correct or PAC model) of 
learning from examples. These results are representation independent, in that they hold 
regardless of the syntactic form in which the learner chooses to represent its hypotheses. 
Our methods reduce the problems of cracking a number of well-known public-key 
cryptosystems to the I ... 

s A new.putolic. key ci^^^^^ 
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Full text available: pdfilJ.S MBJ ^^^^^ 

We present a method for constructing replicated services that retain their availability and 
integrity despite several servers and clients being corrupted by an intruder, in addition to 
others failing benignly. We also address the issue of maintaining a causal order among client 
requests. We illustrate a security breach resulting from an intruder's ability to effect a 
violation of causality in the sequence of requests processed by the service and propose an 
approach to counter this attack. A ... 

Keywords: causality, replication, state machines, threshold cryptography 
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Full text available: pdf(781 .40 KB). 

^ terms 

A fair exchange protocol allows two users to exchange Items so that either each user gets 
the other's item or neither user does. In [2], verifiable encryption is introduced as a 
primitive that can be used to build extremely efficient fair exchange protocols where the 
items exchanged represent digital signatures. Such protocols may be used to digitally sign 
contracts.This paper presents new simple schemes for verifiable encryption of digital 
signatures. We make us ... 

Keywords: contract signing problem, digital signatures, fair exchange, proof of knowledge, 
public-key cryptography, verifiable encryption 



^ ^ Strong signMu re ^s^^^^ 

Shafi Goldwasser, Silvio Micali, Andy Yao 
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Full text available: '^ pdf(691.09 KB) '^^^^^ 

The notion of digital signature based on trapdoor functions has been introduced by Diffie and 
Hellman[3]. Rivest, Shamir and Adleman[8] gave the first number theoretic innplementation 
of a signature scheme based on a trapdoor function. If f is a trapdoor function and m a 
message, f~l(m) is the signature of m. The signature can be verified by computing f(f 

^"2 ProbabllisM Q 
iofprmation 

Shafi Goldwasser, Silvio Micali 

May 1982 Proceedings of the fourteenth annual ACM symposium on Theory of 
computing 

Full text available: '^ pdf(1.21 MB) Additional Information: full citation , abstract, references, citings 

This paper proposes an Encryption Scheme that possess the following property : An 
adversary, who knows the encryption algorithm and is given the cyphertext, cannot obtain 
any information about the clear-text. Any implementation of a Public Key Cryptosystem, as 
proposed by Diffie and Hellman in [8], should possess this property. Our Encryption Schenrie 
follows the ideas in the number theoretic implementations of a Public Key Cryptosystem due 
to Rivest, Shamir and Adieman ... 
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July 1996 Proceedings of the twenty-eighth annual ACM symposium on Theory of 
computing 
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January 1966 Proceedings of the 1966 21st national conference 
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Full text available: 'gpd£791,03.KBj 

Woven fabric is formed from two sets of threads such that all the threads in one set are 
parallel to each other and perpendicular to all threads in the other set. The set of threads 
which run the length of the fabric is called the warp; the set of crosswise threads is called 
the weft. These two sets of threads are interwoven to form a mesh which is called a web. 
The design of a woven fabric originates with an artist's sketch. Since the threads within each 
set remain parallel to e ... 
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constraints and synthesis: tool performance 
Frank Vahid, Thuy Dm Le, Yu-Chin Hsu 

April 1998 ACM Transactions on Design Automation of Electronic Systems (TODAES), 

Volume 3 Issue 2 

M . a •. u. «s5i ^*/ooc 7>. L^Dx Additional Information: full citation , abstract, references , citings, index 
Full text available: "gpd^^^SJ^, KBJ ^^^^^ 

Incorporating functional partitioning into a synthesis methodology leads to several important 
advantages. In functional partitioning, we first partition a functional specification into 
smaller subspecificatlons and then synthesize structure for each, In contrast to the current 
approach of first synthesizing structure for the entire specification and then partitioning that 
structure. One advantage is the improvement in I/O performance and package count, when 
partitioning among hardware block ... 

Keywords: behavioral synthesis, functional partitioning, system-level design 
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Dan Boneh, Matt Franklin 

November 1999 Proceedings of the 6th ACM conference on Computer and 
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Full text available: t|^.pcif(61.3,93 KB). 



terms 

We develop new schemes for anonymous authentication that support identity escrow. Our 
protocols also allow a prover to demonstrate membership in an arbitrary subset of users; 
key revocation is an important special case of this feature. Using the Fiat-Shamir heuristic, 
our interactive authentication protocols yield new constructions for non-interactive group 
signature schemes. We use the higher-residuosity assumption, which leads to greater 
efficiency and more natural security proofs than pr ... 

Keywords: anonymous authentication, group signature, identity escrow 
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February 2000 IEEE/ACM Transactions on Networiiing (TON), Volume 8 issue i 
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Li Gong, Nachum Shacham 

March 1995 Wireless Networks, Volume i issue 3 

Full text available: "g.p.df{t22 MB) Additional Information: fuLcitatipn.. abstract reMences, citings 

Multicast Is rapidly becoming an important mode of communication and a good platform for 
building group-oriented services. To be used for trusted communication, however, current 
multicast schemes must be supplemented by mechanisms for protecting traffic, controlling 
participation, and restricting access of unauthorized users to data exchanged by the 
participants. In this paper, we consider fundamental security issues in building a trusted 
multicast facility. We discuss techniques for group- ... 

^0 25 years of quantu m cry ptograp hy 
Gilles Brassard, Claude Crepeau 
September 1996 ACM SIGACT News, volume 27 issue 3 

Full text available: 'gpdf(.91 8,87,KBj Additional Infornnation: full.cjtatign, abstract, citingis, index.ternri.s 

The fates of SIGACT News and Quantum Cryptography are Inseparably entangled. The exact 
date of Stephen Wiesner's invention of "conjugate coding" is unknown but it cannot be far 
from April 1969, when the premier issue of S/G>AC7"/Vei/vs— or rather SICACT News as it was 
known at the time— came out. Much later, it was in SIGACT News that Wiesner's paper 
finally appeared [74] in the wake of the first author's early collaboration with Charles H. 
Bennett [7]. It was also in < ... 
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